Foundational: Mobile Developer (Android)

Foundational principles of application security for mobile developers. (Video + Hands On)

Total Learning Path Duration: 4 hours 10 minutes

Introduction to Security Journey

Introduction to Security

ClickJacking (HackEDU)

Core Security Concepts

Security Culture and Mindset

Data Breaches

Security Business Case

Prioritizing Security

Translating Security

Risk Managment for AppSec

Privacy and Customer Data Protection

Dealing with Vulnerabilities

OWASP Universe

Knowledge Sources

Secure Development Lifecycle

Six Foundational Truths of Application Security

Secure Design Principles | Part 1

Secure Design Principles | Part 2

Intermediate: Mobile Developer (Android)

Technical deep dive into the threats and security controls relevant to mobile developers. (Video + Hands On)

Total Learning Path Duration: 4 hours 55 minutes

Security Requirements

Threat Modeling Basics

Threat Modeling Process

Threat Modeling Examples

Threat Modeling Manifesto

Threat Modeling (HackEDU)

Input Validation

Output Encoding

Authentication Theory

Authorization Theory

Logging and Exception Handling

Cryptography

Software Supply Chain

OWASP Mobile Top 10 | Part 1

OWASP Mobile Top 10 | Part 2

OWASP Mobile Top 10 | Part 3

Buffer Overflows and Remote Code Execution

Denial of Service (DoS)

Static Application Security Testing (SAST)

Static Application Security Testing (SAST) (HackEDU)

Dynamic Application Security Testing (DAST)

Dynamic Application Security Testing (DAST) (HackEDU)

Advanced: Java (Mobile)

Secure application design, secure coding, secure mobile development, and specialized Java security topics including code tampering, insecure communications, client code quality, and reverse engineering. (Video + Hands On)

Total Learning Path Duration: 6 hours 4 minutes

Intro to Secure Development

Designing a Secure App or Product

Secure Design Principles in Action: Part 1

Secure Design Principles in Action: Part 2

Intro to Secure Coding

Producing Clean, Maintaining, and Secure Code

Secure Coding Best Practices: Part 1

Secure Coding Best Practices: Part 2

Secure Code Review | Part 1

Secure Code Review | Part 2

Introduction to Mobile Security

Mobile Application Threat Landscape

Code Tampering (Android) (HackEDU)

Client Code Quality (Android) (HackEDU)

Reverse Engineering (Android) (HackEDU)

Insecure Authentication (Android) (HackEDU)

Insecure Authorization (Android) (HackEDU)

Mobile Application Security Verification Standard

Secure Mobile Storage

Insecure Communication (Android) (HackEDU)

Insecure Data Storage (Android) (HackEDU)

Insufficient Cryptography (Android) (HackEDU)

Improper Platform Usage (Android) (HackEDU)

Extraneous Functionality (Android) (HackEDU)

Advanced: Kotlin (Mobile)

Secure application design, secure coding, secure mobile development, and specialized Kotlin security topics to include Kotlin secure coding techniques and secure concurrency with Kotlin. (Video + Hands On)

Total Learning Path Duration: 5 hours 10 minutes

Intro to Secure Development

Designing a Secure App or Product

Secure Design Principles in Action: Part 1

Secure Design Principles in Action: Part 2

Intro to Secure Coding

Producing Clean, Maintaining, and Secure Code

Secure Coding Best Practices: Part 1

Secure Coding Best Practices: Part 2

Securing the Development Environment

Secure Code Review | Part 1

Secure Code Review | Part 2

Thinking like a Penetration Tester

Introduction to Mobile Security

Mobile Application Threat Landscape

Mobile Application Security Verification Standard

Secure Mobile Storage

Introduction to Kotlin Security

Secure Coding with Kotlin | Part 1

Secure Coding with Kotlin | Part 2

Secure Concurrency with Kotlin

Recommended Path: Compliance

Recommended Path: iOS Mobile Developer

Recommended Path: Native Developer